Slashdot Mirror

← Back to Stories (view on slashdot.org)

D-Link Patches Critical Vulnerability In Older Routers

Posted by samzenpus on from the protect-ya-neck dept.

An anonymous reader writes "D-Link has released firmware patches for a number of its older routers sporting a critical authentication security bypass vulnerability discovered in October. The flaw was discovered and its exploitability proved with a PoC by Tactical Network Solutions' security researcher Craig Heffner. D-Link confirmed the existence of the problem a few weeks later."

5 of 54 comments (clear)

  1. Well that's good. by johnnys · · Score: 5, Insightful

    Good guy D-Link!!!! It's nice to see a manufacturer actually helping out their customers instead of just making them buy a new router.

    --
    Sometimes the "writing on the wall" is blood spatter...
    1. Re:Well that's good. by pla · · Score: 4, Insightful

      The NSA will be none too pleased about this.

      The NSA wants to have access but keep others out. Known vulnerabilities let the "wrong" spies in. Why do you think *cough* "DLink" *cough* released this patch, anyway?

  2. Now the question is.... by Dega704 · · Score: 4, Insightful

    How many of these devices will actually get patched by their users?

  3. Level of difference made : next to none. by richy+freeway · · Score: 4, Insightful

    How many people will actually apply this firmware update? 90% of people plug their router in, hook their equipment up to it and leave it that way until it breaks, then they replace it.

    1. Re:Level of difference made : next to none. by Anonymous Coward · · Score: 3, Insightful

      That is not the point. This release is about patching there corporate image, not the firmware.